[ANNOUNCE] libXxf86dga 1.1.4

Alan Coopersmith alan.coopersmith at oracle.com
Thu May 30 18:39:05 PDT 2013


libXxf86dga - Client library for the XFree86-DGA extension.

This release provides the fixes for the recently announced security issues
CVE-2013-1991 & CVE-2013-2000, along with a couple build fixes.

Adam Jackson (1):
      configure: Remove AM_MAINTAINER_MODE

Alan Coopersmith (7):
      Use _XEatDataWords to avoid overflow of rep.length shifting
      integer overflow in XDGAQueryModes() [CVE-2013-1991 1/2]
      buffer overflow in XDGAQueryModes() [CVE-2013-2000 1/2]
      integer overflow & underflow in XDGASetMode() [CVE-2013-1991 2/2]
      buffer overflow in XDGASetMode() [CVE-2013-2000 2/2]
      integer overflow in XDGAOpenFramebuffer()
      libXxf86dga 1.1.4

Colin Walters (1):
      autogen.sh: Implement GNOME Build API

Jeremy Huddleston (2):
      Build fix when sizeof(off_t) > sizeof(void *)
      Include <stdint.h> for uintptr_t

git tag: libXxf86dga-1.1.4

http://xorg.freedesktop.org/archive/individual/lib/libXxf86dga-1.1.4.tar.bz2
MD5:  d7dd9b9df336b7dd4028b6b56542ff2c
SHA1: 51f2fc8d5d5fb398cf3c66735789feadb9aaeba9
SHA256: 8eecd4b6c1df9a3704c04733c2f4fa93ef469b55028af5510b25818e2456c77e

http://xorg.freedesktop.org/archive/individual/lib/libXxf86dga-1.1.4.tar.gz
MD5:  8ed1c8674e730e8d333dfe4b9f2097d9
SHA1: 6a67a01616501723fcc07ac95754abaaf256bfa6
SHA256: e6361620a15ceba666901ca8423e8be0c6ed0271a7088742009160349173766b

-- 
	-Alan Coopersmith-              alan.coopersmith at oracle.com
	 Oracle Solaris Engineering - http://blogs.oracle.com/alanc
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 832 bytes
Desc: not available
URL: <http://lists.x.org/archives/xorg-announce/attachments/20130530/152a898b/attachment.pgp>


More information about the xorg-announce mailing list